CVE-2024-22901 Information

Description

Vinchin Backup & Recovery v7.2 was discovered to use default MYSQL credentials.

Reference

http://vinchin.com https://seclists.org/fulldisclosure/2024/Jan/30 https://blog.leakix.net/2024/01/vinchin-backup-rce-chain/